Presentation is loading. Please wait.

Presentation is loading. Please wait.

What’s New in Fireware XTM

Similar presentations

Presentation on theme: "What’s New in Fireware XTM"— Presentation transcript:

1 What’s New in Fireware XTM 11.7.2
WatchGuard Training

2 Updates in Fireware XTM v11.7.2
Support for the new WatchGuard AP100 and AP200 wireless access points spamBlocker updated to use anti-spam technology from Mailshell Other changes: New serial number variable support in the HTTP-proxy deny message New setting in SMTP-proxy action configuration Set the maximum header size TLS encryption not enabled by default See the v Release Notes for a list of resolved issues in v WatchGuard Training WatchGuard Training

3 WatchGuard AP WatchGuard Training

4 Introducing the New WatchGuard AP100 and AP200
WatchGuard now offers two types of wireless devices that you can use separately or together to add secure wireless access points to your network: NEW! WatchGuard XTM Wireless Device WatchGuard Access Point WatchGuard Training WatchGuard Training

5 Gateway Wireless Controller
You can connect multiple WatchGuard APs to the trusted or optional network of an XTM device, and manage them from any wired or wireless XTM device. You configure the Gateway Access Controller on your XTM device to manage the WatchGuard APs. The settings to configure WatchGuard APs are in the Network > Gateway Access Controller menu. WatchGuard Training

6 AP100 and AP200 WatchGuard AP100 WatchGuard AP200 Single Radio
2.4/5GHz switchable 2x2:2 MIMO a/b/g/n Up to 300Mbps 8 SSIDs WatchGuard AP200 Dual Radio 2.4GHz and 5GHz Up to 600Mbps 8 SSIDs per radio Plenum rated WatchGuard Training WatchGuard Training

7 Learn More about the WatchGuard AP Devices
For more information about the how to use the Gateway Wireless Controller to configure and centrally manage new WatchGuard AP devices, see: WatchGuard System Manager or Web UI v Help WatchGuard AP Setup Guide or Deployment Guide WatchGuard Training WatchGuard Training

8 spamBlocker WatchGuard Training

9 spamBlocker with Mailshell
Starting with Fireware XTM OS v11.7.2, spamBlocker uses anti-spam technology from Mailshell. Mailshell uses a combination of rules, pattern matching, and sender reputation to accurately identify and block spam messages. Most existing spamBlocker configuration settings do not change. Spam threshold settings are added. Settings for Proactive Patterns, Virus Outbreak Detection, and Bulk do not apply to Fireware XTM OS versions that use Mailshell. WatchGuard Training

10 spamBlocker Spam Thresholds
Mailshell assigns each message a spam score from 1 to 99. A message with a higher score is more likely to be spam. You can configure the spam thresholds in spamBlocker Settings. Confirmed spam threshold: If a message has a spam score equal to or higher than this threshold, it is classified as confirmed spam. The default value is 90. Suspected spam threshold: If a message spam score is equal to or higher than this threshold, but lower than the confirmed spam threshold, it is classified as suspected spam. The default value is 60. Spam thresholds do not apply to older versions of Fireware XTM OS that do not use Mailshell. If you use Policy Manager to manage a device that uses an older version of Fireware XTM OS, these settings are not saved to the XTM device. WatchGuard Training WatchGuard Training

11 spamBlocker General Settings
Policy Manager still has configurable settings for Virus Outbreak Detection and Proactive Patterns in spamBlocker Settings. These settings do not apply to spamBlocker with Mailshell. These settings apply only to versions of Fireware XTM that use Commtouch. These settings remain in Policy Manager, to enable Policy Manager to configure devices that use older versions of Fireware XTM. These settings are removed from the Fireware XTM Web UI and CLI. The Connection String Override option is also removed from the General Settings tab. It was used for troubleshooting by WatchGuard technical support. It is still available in the CLI. Policy Manager does not save settings for VOD or Proactive Patterns to the XTM device if the XTM device uses a version of Fireware XTM OS that does not support these features. WatchGuard Training WatchGuard Training

12 spamBlocker Actions Mailshell does not have a bulk spam category.
Action settings for the Bulk category are removed from the v Web UI WatchGuard Training

13 spamBlocker Actions Action settings for the Bulk category remain in Policy Manager, to enable Policy Manager to manage older versions of Fireware XTM. Messages marked as bulk option no longer appears in Firebox System Manager or the Web UI. WatchGuard Training

14 Fireware XTM OS Versions that Use Mailshell
spamBlocker uses Mailshell only in newer versions of Fireware XTM OS. Fireware XTM OS versions released after February 2013 use Mailshell. All earlier versions of Fireware XTM OS use Commtouch. The table below shows which Fireware XTM versions support Mailshell. Fireware XTM OS Commtouch Mailshell v11.3.0–v11.3.5 v11.4.x, v11.5.x v11.6.0–v11.6.4 v11.7 v11.3.6–v11.3.x (for e-Series devices) v11.6.5–v11.6.x (for XTM 21, 22, 23 devices) v and higher (for all other XTM devices) WatchGuard Training

15 Send spamBlocker Feedback to WatchGuard
You can send feedback to WatchGuard about spamBlocker false positives or missed spam. False Positives — Send the messages as attachments, including the full headers, to Missed Spam — Send the messages as attachments, including the full headers, to To create the feedback message in Microsoft Outlook: Drag and drop the missed spam or false positive to a new message. You can attach more than one message to the same feedback message. Send the new message to the appropriate feedback address. WatchGuard Training

16 Proxies WatchGuard Training

17 SMTP Proxy — Set Maximum Email Header Size
In the SMTP proxy action General Settings, you can now specify the maximum size for headers. WatchGuard Training

18 SMTP Proxy — TLS Encryption Setting Change
In the SMTP proxy action TLS encryption settings, the Enable deep inspection of SMTP with TLS option is no longer enabled by default for new configuration files. Existing configuration files are not affected by this change after an OS upgrade. WatchGuard Training

19 HTTP Proxy — Serial Number in Deny Message
With Fireware XTM OS and WSM v11.7.2, you can add two new variables to the body of the HTTP proxy deny message to include the serial number and XTM device name in the deny message: Serial number — %(serial)% XTM device name — %(firewall)% WatchGuard Training

20 Hotspot WatchGuard Training

21 XTM Device Hotspot With the v release, you can enable a hotspot for any wired or wireless network. You can enable a hotspot any XTM device running v The Hotspot feature has moved from the Wireless menu to the Authentication menu. Select Setup > Authentication > Hotspot. WatchGuard Training

22 THANK YOU! WatchGuard Training

Download ppt "What’s New in Fireware XTM"

Similar presentations

Ads by Google